Package: nufw Severity: serious Tags: security Hi,
A security issue has been reported against your package nufw: > NuFW 2.2.3, and certain other versions after 2.0, allows remote attackers > to bypass time-based packet filtering rules via certain "out of period" > choices of packet transmission time. http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4461 It seems the new upstream 2.2.4 fixes this. Please mention the CVE id in the changelog when fixing this. Also please check whether stable is vulnerable and coordinate with the security team. Thanks, Thijs
pgpUJLV6yDMGs.pgp
Description: PGP signature
